22 of 22 Remote Information Security Management Jobs in the UK

worldwide. The main office is based near Liverpool Street station, London. We have offices in Bermuda, Brazil, Cyprus, Greece, Hong Kong, Japan, and Singapore. Overall Job Purpose: The Junior Information Security Officer (JISO) will assist the Information Security team in implementing and maintaining the information security management system with the objective of managing … risks to information assets to an acceptable level. The JISO will develop a good understanding of the information security policies, standards and procedures and will assist InfoSec in implementing, managing and monitoring the relevant controls. It is imperative that the JISO develops a strong understanding of the organisation's technology landscape to help identify potential threats and … vulnerabilities. Requirements Key Responsibilities: Assist in maintaining the information security standards, procedures and guidelines. Participate in the information security risk management process to identify, assess, treat and monitor risks. Manage information security incidents and events to protect information assets. Help develop and implement incident response plans and procedures to ensure that information More ❯

Information Security Manager NCC Location: Bristol based with Hybrid working 2 days on site, 3 days home Salary: £54,102 to £67,056 per annum (experience dependent) Government Security Clearance: You will be required to undertake government security clearance if successful securing this role. Please only apply if willing to undertake clearance process. Closing Date … advert early if required. Summary; NCC is the UKs innovation partner! Were supporting a range of interesting new projects in the defence sector and are hiring for an additional Information Security Manager to join our expanding secure operations team. Your role as Information Security Manager is to ensure the effective protection of secure information and … Youll report into the Head of Secure Operations and work with a wide range of internal stakeholders including secure operations teams, the board members & senior leadership, HR business partners, security & networking managers. External relationship management will also be large part of your role including our defence sector clients and government bodies. What youll be doing; Reviewing new Security More ❯

Information Security Technical Assurance Lead - £700 per day - Inside IR35 - Hybrid working from a site in Paddington - 6 months initial contract. Our client, a global supplier to the nuclear energy industry, is seeking a highly skilled Information Security Cyber Assurance Specialist to join their team. This critical role is responsible for ensuring the security and … resilience of their information systems, aligning with industry standards and regulatory requirements. You will provide assurance that their IT and OT environments are secure and compliant, supporting the delivery of business objectives while managing risk. Key Responsibilities - Develop, implement, and maintain information security assurance programs. Ensure compliance with regulatory requirements and standards (e.g., ISO 27000, NIST SP800 … series, CSF). Conduct risk assessments and vulnerability management activities. Maintain robust security controls across enterprise assets, software, networks, and applications. Support incident response and recovery processes, including penetration testing and audit log management. Deliver training and awareness programs to enhance the organizations security posture. Collaborate with internal and external stakeholders to maintain compliance and manage third More ❯

Information Security Technical Assurance Lead - £700 per day - Inside IR35 - Hybrid working from a site in Paddington - 6 months initial contract. Our client, a global supplier to the nuclear energy industry, is seeking a highly skilled Information Security Cyber Assurance Specialist to join their team. This critical role is responsible for ensuring the security and … resilience of their information systems, aligning with industry standards and regulatory requirements. You will provide assurance that their IT and OT environments are secure and compliant, supporting the delivery of business objectives while managing risk. Key Responsibilities - Develop, implement, and maintain information security assurance programs. Ensure compliance with regulatory requirements and standards (e.g., ISO 27000, NIST SP800 … series, CSF). Conduct risk assessments and vulnerability management activities. Maintain robust security controls across enterprise assets, software, networks, and applications. Support incident response and recovery processes, including penetration testing and audit log management. Deliver training and awareness programs to enhance the organizations security posture. Collaborate with internal and external stakeholders to maintain compliance and manage third More ❯

Role: IT Information Security Manager Salary: £65,000 - £75,000 Per Annum, Plus Benefits Package Location: Hereford with a hybrid working arrangement Must have: The right to work in the UK Full UK driving licence Be able to gain BPSS (Baseline Personnel Security Standard) clearance Be able to gain SC (Security Check) clearance as standard along … with any specific security clearances that may be required Our leading services client requires an accomplished Information Security Manager to be responsible for protecting the Group's data and information systems from cyber threats and unauthorised access. This includes developing and implementing security policies, assessing risks, providing reports and managing security incidents. You will … also oversee security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training More ❯

Information Security Manager Location: Oxfordshire Salary: £48,000 – £57,000 Contract: Permanent, Full-Time Hybrid Working: 50/50 split Team size: 1 direct report (Junior InfoSec Analyst) Ready to lead the charge in safeguarding cutting-edge science? Join my client , a world-renowned research organisation, as their Information Security Manager . This is your chance … enabling groundbreaking environmental research. Why this role matters Cybersecurity isn’t just about defence – it’s about empowering innovation. In this hands-on leadership role, you’ll shape the security strategy, mentor a talented team, and embed a culture of security across the organisation. Reporting to the Head of IT, you’ll combine strategic vision with technical expertise … to keep my client resilient and future-ready. What you’ll do Lead my client’s Information Security programme with creativity and cost-effectiveness Manage a small, dedicated team and oversee budgets Develop and maintain security policies, standards, and procedures Drive risk assessments, incident response, and internal reporting Champion security awareness through training for all staff More ❯

Information Security Officer - International Law Firm (London-Based) Permanent | Hybrid Working | Competitive Salary I am working with a leading international law firm to support their search for an experienced and proactive Information Security Officer (ISO) to lead their global information and data security programme. This senior-level role offers the opportunity to shape the … firm's long-term security strategy, drive ISO 27001 certification, and ensure the resilience of systems and data across offices in the UK, US, and Europe. The position reports to the Director of IT and works closely with regional IT teams and external partners. Key Responsibilities: Lead the firm's information security governance framework across all offices … and platforms Maintain and enhance the ISO 27001-aligned Information Security Management System (ISMS) Ensure compliance with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes More ❯

Job Description IT & Information Security Lead Location : Bristol - Hybrid Full time Job Description At Rolls-Royce we are proud to be a business that has truly helped to shape the modern world and are committed to always being a force for progress; powering, protecting and connecting people everywhere. By joining Rolls-Royce, you'll have the opportunity to … high-performance culture. You will be responsible for ensuring timely and accurate distribution of hardware and peripherals to end user, supporting onboarding and day to day queries, ensuring contractual security requirements are assessed and implemented into day-to-day processes, and reviewing supply chain security. What you will be doing: Security Aspect Letters (SAL) Respond to SALs from … Customers Assess SAL & Create Compliance Matrix Manage Project Confidentiality List (PCL) Issue SALs to Supply Chain Conduct Supplier Security Audits IT Account Management & Support Request Account Creation Approve Issue of Laptops Request Folder Access Order and Issue Peripherals Order Replacement IT equipment Site Support You will be primarily responsible for staff located at the Bristol site whilst building More ❯

Job Description IT & Information Security Lead Location: Bristol - Hybrid Full time Job Description At Rolls-Royce we are proud to be a business that has truly helped to shape the modern world and are committed to always being a force for progress; powering, protecting and connecting people everywhere. By … high-performance culture. You will be responsible for ensuring timely and accurate distribution of hardware and peripherals to end user, supporting onboarding and day to day queries, ensuring contractual security requirements are assessed and implemented into day-to-day processes, and reviewing supply chain security. What you will be doing: Security Aspect Letters (SAL) Respond to … SALs from Customers Assess SAL & Create Compliance Matrix Manage Project Confidentiality List (PCL) Issue SALs to Supply Chain Conduct Supplier Security Audits IT Account Management & Support Request Account Creation Approve Issue of Laptops Request Folder Access Order and Issue More ❯

wellness and employee assistance programmes, gymflex, travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture Role Purpose Design and implement changes to information security governance & risk management, to ensure that the organisation's security posture is robust, compliant, and adaptable to emerging threats while aligning with strategic business goals. … by identifying and recommending changes to Infosec policies, processes, control frameworks Ensure that we are consistently compliant with customer, regulatory, and shareholder obligations. Implement and continuously improve a risk management process across the organisation. Maintain and assess the effectiveness of the security controls catalogue; recommend improvements. Own the Information Security Management System (ISMS) to ensure … compliance with internal and external requirements. Provide assurance that security controls are operating effectively and aligned with defined frameworks. Maintain company risk portfolio and actively review and risk finding Conduct internal assessments against regulatory and customer obligations, compliance assessments, and gap analyses. Develop and implement governance frameworks aligned with business and regulatory requirements. Skills Cyber Risk Oversight - Strategic understanding More ❯

wellness and employee assistance programmes, gymflex, travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture Role Purpose Design and implement changes to information security governance & risk management, to ensure that the organisation's security posture is robust, compliant, and adaptable to emerging threats while aligning with strategic business goals. … by identifying and recommending changes to Infosec policies, processes, control frameworks Ensure that we are consistently compliant with customer, regulatory, and shareholder obligations. Implement and continuously improve a risk management process across the organisation. Maintain and assess the effectiveness of the security controls catalogue; recommend improvements. Own the Information Security Management System (ISMS) to ensure … compliance with internal and external requirements. Provide assurance that security controls are operating effectively and aligned with defined frameworks. Maintain company risk portfolio and actively review and risk finding Conduct internal assessments against regulatory and customer obligations, compliance assessments, and gap analyses. Develop and implement governance frameworks aligned with business and regulatory requirements. Skills Cyber Risk Oversight - Strategic understanding More ❯

Location: London/Greater London/Home-based with regular travel Reports To: Certification Manager/Head of Audit and Compliance Department: Information Security Certification About Us We are a UKAS-accredited certification body delivering independent audit and certification services across multiple management system standards, including ISO 9001, ISO 14001, and ISO 27001. Our goal is to … compliance, strengthen governance, and continuously improve. Were seeking a qualified ISO 27001 Lead Auditor based in or around London to join our expanding audit team. Youll lead and conduct Information Security Management System (ISMS) audits in line with ISO/IEC 27001:2022 , ISO 17021 , and UKAS requirements. Key Responsibilities Plan, conduct, and report Stage 1, Stage … Ensure impartiality, confidentiality, and compliance with UKAS , ISO 17021-1 , and ISO 19011 principles. Support technical reviews, certification decisions, and internal auditor development. Maintain up-to-date knowledge of information security, data protection, and cyber-risk frameworks. Essential Qualifications and Experience Successfully completed an ISO/IEC 27001:2022 Lead Auditor course (IRCA-approved or equivalent). At More ❯

Salary/package: £100,000 - £110,000 per annum Contract type: Permanent Hours: Full time, 37 hours per week We are looking for an experienced and forward-thinking cyber security leader to join our Corporate Services division as Head of Cyber Security. This is a senior strategic role with organisation-wide visibility and impact. If you have the vision … expertise and influence to embed robust cyber security across a complex and fast-growing business, we want to hear from you. Who we are Commercial Services Group is one of the UK's largest local authority-owned trading organisations, comprising 33 diverse businesses that operate across education, local government, the NHS and beyond. We provide services in recruitment, energy … procurement, legal, IT, HR, education supplies, facilities management and more. With more than 1,800 employees and a global footprint, we combine commercial excellence with social impact, reinvesting a significant proportion of our profits into public services. Corporate Services underpins the success of all Commercial Services Group trading divisions by providing the infrastructure, expertise and governance needed to enable More ❯

IT Security and Governance Manager, ISO27001, c £ 50000 - 60000+ benefits, nr Cheltenham, Gloucestershire. 3 days in the office, 2 days WFH Growing company are looking for an IT Security and Governance Manager who will co-ordinate all the governance and compliance including Certifications such ISO 27001, Cyber Essentials and NIST. You will support the ongoing production and publication … of Policies, Awareness and Risk across the business. These controls are provided in the Information Security Management system. Main responsibilities include - Manage the compliance Portal/Information Security Management System. Manage supplier engagements based on IT Security Certifications and to drive improvements where required. Manage the relevant Certifications. Primarily ISO 27001, Cyber Essentials … and NIST 800-171 (ISO 27001 critical, training available for NIST). Contribute to awareness activities. Supporting the management of Risk. Supporting the daily maintenance activities and response where necessary. Policies, Awareness and Risk across the business Experience Required - Previous knowledge and responsibility for ISO 27001. Good knowledge of Cyber Essentials (NIST an advantage). Data Protection or similar More ❯

About SPS: Special Projects and Services Limited (SPS) is a UK-based security and risk management company founded in 1991. Operating globally, SPS provides crisis response, risk assessment, medical operations support, and project management in high-risk or complex environments. Known for its expertise in global assistance and specialist security operations, SPS was acquired by Concentric … in 2025, strengthening its position as a trusted provider of integrated risk and crisis management solutions. Overview: You will support the delivery of IT services across the UK business, assisting with technical support, device management, and ongoing tech ops projects. This role provides structured, hands-on training in IT systems administration, cyber security, and compliance, contributing to … access permissions, and documenting asset inventory. Support the purchase, setup, and installation of IT equipment as required. Maintain an accurate inventory of all technology assets, ensuring updates to asset management systems. Assist in developing, documenting, and managing processes for supporting the IT environment holistically, including but not limited to: workstation deployment, system access management, software patching/upgrades More ❯

You will support the delivery of IT services across the UK business, assisting with technical support, device management, and ongoing tech ops projects. Role Provide Tier 1 and supervised Tier 2 IT systems support for the company’s users, devices, and internal network services, escalating complex issues as required Assist with employee onboarding and offboarding, including provisioning equipment, configuring … access permissions, and documenting asset inventory Support the purchase, setup, and installation of IT equipment as required Maintain an accurate inventory of all technology assets, ensuring updates to asset management systems Assist in developing, documenting, and managing processes for supporting the IT environment holistically, including but not limited to workstation deployment, system access management, software patching/upgrades … and management of cloud services Help manage service accounts and vendor contracts (e.g. internet, phone, printer) Contribute to maintaining documentation of the company’s technology architecture Research and suggest service enhancements to improve efficiency and user experience Support the implementation and maintenance of the company’s ISO 27001 Information Security Management System and ISO 27701 Privacy More ❯

Information Security Manager (Remote, UK) Salary: up to £60,000 DOE + Training Budget + Bonus Scheme Join a fast-growing cybersecurity consultancy that partners with enterprise-scale clients across finance, healthcare, technology, and energy helping them build resilience, meet compliance goals, and stay ahead of evolving threats. Youll be part of a collaborative, award-winning team that … frameworks into clear, actionable strategies. Mentor and guide junior consultants, contributing to team development and quality assurance. Work closely with technical teams to align governance and compliance with operational security practices Operate autonomously while helping refine and enhance consultancy methodologies. Desired Experience: Proven experience in GRC consulting, audit, or information security management within large or regulated … knowledge of ISO 27001 and SOC 2 (experience with PCI-DSS, NIST, DORA, or NIS2 advantageous). Excellent communication and presentation skills, confident in C-level workshops and stakeholder management . Organised, self-motivated, and experienced managing multiple enterprise projects simultaneously. Certifications such as CISM, CISA, CISSP, or ISO Lead Auditor desirable. Why Join: Work with some of the More ❯

work closely with clients to understand their business needs, develop tailored solutions, and ensure that projects are executed efficiently, on time, and within budget. Your technical expertise and project management skills will be critical in delivering high-quality results that meet or exceed client expectations. Responsibilities: Collaborate with Project Management Office to ensure successful delivery of projects, meeting … updates and reporting. Ensure that all project milestones, tasks, and issues are documented and actioned promptly to maintain clear visibility for all team members Uphold the highest standards of information security by strictly following the company's policies and procedures, ensuring compliance with industry regulation and data protection guidelines to protect client and company data Prepare and deliver … comprehensive client documentation, ensuring that all necessary technical details, configurations and system information are included, and shared with the Service Desk to ensure smooth ongoing support Take ownership of the client onboarding and offboarding process, ensuring a smooth and efficient transition for new and departing clients. For onboarding, manage the integration of client systems, provide training, and ensure all More ❯

work closely with clients to understand their business needs, develop tailored solutions, and ensure that projects are executed efficiently, on time, and within budget. Your technical expertise and project management skills will be critical in delivering high-quality results that meet or exceed client expectations. Responsibilities: Collaborate with Project Management Office to ensure successful delivery of projects, meeting … updates and reporting. Ensure that all project milestones, tasks, and issues are documented and actioned promptly to maintain clear visibility for all team members Uphold the highest standards of information security by strictly following the company's policies and procedures, ensuring compliance with industry regulation and data protection guidelines to protect client and company data Prepare and deliver … comprehensive client documentation, ensuring that all necessary technical details, configurations and system information are included, and shared with the Service Desk to ensure smooth ongoing support Take ownership of the client onboarding and offboarding process, ensuring a smooth and efficient transition for new and departing clients. For onboarding, manage the integration of client systems, provide training, and ensure all More ❯

within a regulated environment Strong understanding of UK GDPR, EU GDPR, and the Data Protection Act 2018 Experience delivering data privacy compliance frameworks and/or programmes Familiarity with information governance and information security management systems (ISO27001) Excellent communication and stakeholder management skills Proven ability to lead projects, manage risk, and influence across matrix environments … Desirable certifications: CIPP (Certified Information Privacy Professional) or other recognised privacy certification, Lead Auditor qualification (or equivalent) The Role: Support the Director of Legal & Compliance (Data Protection Officer) and act as a key member of the Local Privacy Office Implement and maintain the affiliate's local privacy framework, ensuring compliance with applicable privacy legislation and Roche's internal governance … Lead local data privacy initiatives, including training, awareness campaigns, and risk management programmes Conduct and oversee Data Protection Impact Assessments (DPIAs) and ensure privacy by design in all projects and processes Manage personal data breaches and incidents, including investigation, remediation, and reporting Oversee data subject access requests (DSARs) and ensure compliance with individual rights under data protection law Develop More ❯

working on major civil engineering or rail projects Desirable to be working towards MCIPS Practical approach, logical thought process and a methodical way of working Extensive knowledge of office management systems including document control. Proficient in technical minute taking at contractual meetings and able to demonstrate the ability to collate information, prepare reports, clearly record contractual commitments, write … be reported to HS2. It is an SCSJV requirement that all employees, Design House, and Supply Chains must implement and comply with the requirements of ISO 9001:2015 Quality Management System, ISO 14001:2015 Environmental Management System with guidance for use, OHSAS 18001:2017 Occupational Health and Safety Management Systems and ISO/IEC 27001:2013 Information Security Management System, Policies, Plans, Procedures and Processes, and statutory requirements as they affect the Joint Venture 's operations and ensure that the requirements, as applicable within their discipline, are effectively implemented on the project. Develop a culture of safety on the project through the absolute commitment to the Zero Accidents target and ethos, and develops a More ❯

the company Share Plan scheme. Cytec Solutions is a technology company, with a pedigree for developing, implementing, and supporting tailored solutions in the fields of share plan administration, insider management and corporate governance. Cytec works on developing high quality, innovative software solutions working with FTSE listed companies, private organisations, and administrators/trustees, all of whom expect reliable and … to play a real part in the extended growth of this progressive company. We are proud to be ISO 27001 certified, demonstrating our commitment to the highest standards of information security. This certification reflects our rigorous approach to safeguarding data across our suite of corporate governance and business process management software solutions. As part of our ongoing dedication … to security awareness, we expect all team members to contribute to maintaining and enhancing our Information Security Management System. Cytec Solutions are looking for a Software Tester to join our Product and Technology team. Role: The role will be part of our new Product and Technology team, reporting directly to the CPO. The Software Tester role More ❯